Author
Topic: Mip and Destination NAT in the same rule (Read 2155 times)

HelloI have a route based VPN that i have a bit of a messy request for.The servers on my side will both have to be source translated (i guess by mip) and i also need to make a destination translation.Se my example, Server A (for example 192.168.0.1) is the server on my site, i translate that to 192.168.1.1) and it connects to NAT address (10.0.0.1) is the address the server are connected to, and server B (212.212.212.212) is the server it acctuly connect to.

192.168.0.1 (192.168.1.1) -> 10.0.0.1-> 212.212.212.212

So server A thinks its connecting to 10.0.0.1 but in reallity it connects to 212.212.212 and 212.212.212.212 see it as the source 192.168.1.1.

I cant get both MIP and Destination nat to work. It just do the destination NAT and not the mip stuff.

I dont "control" the other side of the VPN its a other partner/client. Im migrating all the VPN:s from a other vendor to a netscreen cluster. In the old enviorment this (weird) setup with both source and destionation NAT is working, so i would prefer to solve it without have to involve the other client/partner so much.